Passive Recon - tmansfield42/Tech-Journal GitHub Wiki

Passive recon - the process of gathering information on an organization for a pen test.

xHarvest: xHarvest is a data harvesting tool that comes with kali linux. It basically automates OSINT process by gathering information on a domain from publicly available resources like google, bing, etc. It finds things like websites, emailes, IP addresses and helps pentesters gain basic information about a person or organization.

Metagoofil: This is another information tool that harvests publicly available documents like .pdf .docx and .xls files. It can find information like emails, usersnames, software versions, file paths, etc. that can lead to starting points for threat actors.

Exfiltool: Designed for data exfiltration and can be fed multiple different files to extract specific information that's useful to red-team members.